VYPR

pypi · Malicious package advisory

Malware

free-net-vpn

GHSA-jgw6-3fjm-w5f6

free-net-vpn malicious PyPI package

Details

**Severity:** High

**Affected versions:** `>= 0`

Security researchers at Check Point Research discovered a malicious package called `free-net-vpn` that targets environment variables. PyPI has since removed `free-net-vpn`.

**References:**
- https://pypi.org/project/free-net-vpn
- https://research.checkpoint.com/2022/cloudguard-spectral-detects-several-malicious-packages-on-pypi-the-official-software-repository-for-python-developers/
- https://github.com/advisories/GHSA-jgw6-3fjm-w5f6

Compromised versions (1)

  • >= 0

Any computer that installed or ran a compromised version should be considered fully compromised. Rotate every secret on that machine from a clean environment.